The heavy reliance on technology in today’s data-driven world means that cybersecurity threats must be taken seriously. More specifically, with respect to M&A transactions, a target’s cybersecurity mechanisms have become an important part of the due diligence consideration. Indeed, it is important to have a firm grasp on the nature and extent of a target’s cybersecurity vulnerabilities, the likelihood of a breach, and the procedure in place to remedy a breach, if necessary. These considerations have the power to significantly alter the value of a transaction, or even derail it entirely.
Last year saw an increase in the frequency of data breaches and this trend is unlikely to disappear in 2018. We previously reported on the importance of cybersecurity in the M&A due diligence process. Conducting due diligence of a target’s cybersecurity procedures has become even more crucial in light of Canada’s new notification requirements. These requirements, regulated by the Personal Information Protection and Electronic Documents Act (PIPEDA), are based on amendments made to PIPEDA in 2015 as well as a regulation proposed in 2017 called Breach of Security Safeguards Regulations (Regulations). The Regulations will impose new … Continue Reading
Given the increasing frequency of cybercrime and online security breaches, cybersecurity has moved to the forefront of importance when evaluating M&A prospects. Acquirors want to ensure that they are receiving the full value of what they are purchasing and protect themselves against any possible data breaches that can result in reputational, legal, or financial harm.
A report by the New York Stock Exchange Governance Services surveyed 276 directors and officers of public companies to determine how the growing presence of cybersecurity threats has had an impact on their M&A due diligence process. The report indicates that:
- 66% of respondents include
In 2015, we have seen several important cybersecurity breaches in the industry. Some of them have been extensively mediatized while others remained less known by the general public. Recently, the online dating website Ashley Madison was hacked and the identity of millions of users revealed all around the world. Even more recently, we learned that over 500 million users’ Yahoo accounts had been hacked in 2014 and this news came out shortly after the acquisition of Yahoo by telecom giant Verizon. Can these attacks jeopardize your upcoming transaction? They absolutely can. As a matter of fact, Verizon asked for a … Continue Reading
Data and privacy breaches have garnered much media attention as of late and the list of companies that have experienced a breach is mounting. The potential costs to companies resulting from large-scale privacy breaches are immeasurable. In addition to the costs associated with resulting litigation (often in the form of privacy breach class actions), publicized breaches come with reputational harm.
As a result, companies and organizations considering M&A must be alive to privacy issues and privacy laws. While appropriate due diligence can help guard against liability for privacy breaches, companies should be aware that there are privacy risks associated with … Continue Reading